Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/PmZYaBP1ojV0YdxLj_xFkf0XpZM.roa
File: PmZYaBP1ojV0YdxLj_xFkf0XpZM.roa (raw, json)
Hash identifier: NNwaV1uNvAGGPl4HMUYPHuriWWEWmz+6H1F7VzM2Y4I=
Subject key identifier: 3E:66:58:68:13:F5:A2:35:74:61:DC:4B:8F:FC:45:91:FD:17:A5:93
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PmZYaBP1ojV0YdxLj_xFkf0XpZM.roa
Signing time: Thu 15 Sep 2022 02:42:29 +0000
ROA not before: Thu 15 Sep 2022 02:42:29 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:29 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=3E66586813F5A2357461DC4B8FFC4591FD17A593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3f:67:fe:b0:1c:15:c5:cb:73:f7:86:ab:76:
11:b5:e2:7b:0d:82:fa:c1:8d:ba:07:d3:11:08:c1:
78:04:83:21:a1:e7:f1:36:b6:aa:68:df:5f:3c:81:
83:ac:d8:86:35:19:66:7f:29:db:8a:fe:5b:3f:e4:
03:2a:99:92:dc:fc:34:2b:50:e8:f6:e9:ef:4f:c3:
d0:06:54:c7:f4:4f:96:6c:20:15:60:61:e3:09:5c:
58:26:51:2e:76:ec:b0:8c:95:f3:8f:f0:05:25:cd:
6d:90:e9:44:42:05:5f:79:95:58:0b:21:80:36:b7:
bc:b0:44:1d:0d:05:e7:cf:9d:11:8d:41:e2:7a:f7:
7b:d3:d3:5f:71:1c:35:19:58:0a:bf:ff:be:a9:ec:
22:a6:9d:f0:de:a1:09:93:cb:ae:e5:ab:ae:8a:fe:
c0:f8:37:de:b0:54:72:2a:8b:10:b3:42:28:bf:7f:
3c:a0:67:88:be:4a:fb:50:8c:10:c1:2d:2e:9a:c3:
34:e1:69:d9:fc:57:3c:05:64:63:9d:55:74:27:49:
e3:24:eb:41:d7:98:b0:a6:41:58:25:0c:bb:2d:c4:
f1:c2:e9:60:79:08:42:cc:04:fc:b8:fa:58:73:8b:
1b:f2:4d:63:da:fa:36:2f:06:1b:d0:76:b0:60:ce:
86:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:66:58:68:13:F5:A2:35:74:61:DC:4B:8F:FC:45:91:FD:17:A5:93
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/PmZYaBP1ojV0YdxLj_xFkf0XpZM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.44.0/22
Signature Algorithm: sha256WithRSAEncryption
25:7e:2f:14:60:5d:cd:ae:02:b6:91:af:64:7e:ae:a9:c6:b4:
cc:8b:76:81:ae:31:f2:46:ec:01:e0:a1:f6:06:bc:9c:36:f7:
43:62:cd:fe:b6:ae:eb:d8:e4:41:e3:51:5d:ea:16:3b:c7:bc:
af:d2:8e:d1:99:d0:5c:e4:ee:c0:7c:64:c6:a2:97:cc:8a:c8:
3d:d9:31:d3:f4:56:6c:c4:0b:64:c9:83:1e:4e:14:ec:ab:ac:
7d:54:d7:e2:d6:e0:2f:64:05:74:94:b3:ee:b3:65:94:95:e0:
6e:a6:ca:ec:41:f6:b5:56:9b:07:d7:fb:09:b6:6f:54:66:69:
ca:26:37:66:c3:e0:5e:38:01:5c:82:8f:56:4e:7a:5d:55:ca:
37:d8:38:d7:e9:60:9d:4b:18:cc:69:0a:5f:fe:b3:76:40:e3:
e8:5e:4e:f2:0a:2b:6b:fe:4a:48:ac:ac:9f:e0:1f:3c:0e:5e:
06:30:36:d6:bf:da:dd:f3:17:cc:a9:76:f1:8e:c9:c1:95:ba:
e0:2f:14:d0:95:46:81:82:96:32:19:bd:37:b9:e5:0f:b0:b0:
23:0a:2b:89:26:4f:6c:3a:9f:0d:85:49:b0:f4:35:5d:cb:76:
bc:7c:6d:39:43:20:54:e6:cf:e1:08:b3:dd:b7:ba:bb:a4:58:
99:5f:ab:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:05 2025 by rpki-client